NetSPI

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. NetSPI secures the most trusted brands on Earth through Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS). Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. We are seeking an experienced professional with demonstrated technical depth and breadth for our secure code review practice as well as the soft skills to effectively communicate with executive and technical teams. In this role, you will primarily serve as a resource for delivering client assessment services and contribute to practice development. Applicants are expected to leverage strong problem-solving skills, as well as lead, collaborate, and innovate to deliver high-quality exercises and exceptional experiences for our customers. Responsibilities Deliver secure code review assessment on programming languages such as Java, C#, C/C++, Python, TypeScript, and JavaScript Analyze and identify security vulnerabilities in source code using both automated and manual static analysis tools and techniques Review vulnerabilities (CVEs) in usage of third-party libraries and determine reachability and exploitability. Develop and review checklists, custom vulnerability description, business impact and remediation strategies. Develop custom rules and patterns to enhance the capabilities of existing SAST Tools. Contribute to development and delivery of secure coding review and development best practices and remediation training Contribute to the development and delivery of secure code review training and secure coding best practices. Collaborate with and assist developers in writing secure software and remediating existing vulnerabilities Mentor and assist team members in effectively delivering assessments and enhancing skillsets Contribute to the community through the development of tools, presentations, white papers, and blogs. Minimum Qualifications 5+ years of hands-on experience spanning secure code review, static application security testing (SAST), and/or source code-assisted penetration testing. Thorough understanding of the OWASP Top 10 and SANS Top 25 vulnerabilities, with a strong focus on identifying and remediating security issues in source code Proven understanding of enterprise application architecture, including scalable, high-availability environments for web/mobile applications. Expertise in conducting taint analysis to trace and remediate data flow vulnerabilities, with a deep understanding of request routing in diverse frameworks. Proven ability to audit codebases to identify and validate existing security controls (e.g., input validation, encoding) Familiarity with SAST tools such as Checkmarx, Fortify, Semgrep, Veracode, Appscan Source, Coverity or similar SAST platforms. Bachelor’s degree or higher with a concentration in computer science, engineering, math, IT, or equivalent experience. Preferred Qualifications Experience in web development using Java, .NET, or similar enterprise languages. Experience with modern front-end frameworks (Angular, React) and languages (TypeScript, JavaScript). OSCP, OSWE, or similar certifications Web Application pen-testing experience We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Show more Show less

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. Responsibilities Understand and analyse user requirements and convert them into a feasible test document (test plans, test suites). Selenium and Java UI automation-based application testing Work with geographically distributed team of various experience level Required Technical Skills 6-8 years of hands-on testing experience and 3+ years in Automation testing Knowledge of testing tools, techniques, and methodologies Strong experience in web application testing Strong experience with UI Automation testing (desktop) Good experience in Rest API testing. Good experience with relational / NoSQL databases Experience in unit testing, integration testing, performance testing & functional testing Preferred Skills Experience working on AI-based products/projects is a big plus. Open-source contribution Hands-on experience in Karate Framework Experience in Web Services, AWS, Azure and Python is a plus Experience working in Agile team environment Good communication skills Required Education Bachelor’s degree in Computer Science At NetSPI, you will join a team that values innovation and collaboration, where your contributions make a real impact. Apply now to help secure the digital frontier. About the Organization : NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI helps security teams take a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. By continually advancing solutions such as Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS), NetSPI goes beyond the noise to deliver high impact results and recommendations based on business needs, so customers can protect their priorities, perform better, and innovate with confidence. NetSPI secures the most trusted brands on Earth, including nine of the top 10 U.S. banks, four of the top five leading cloud providers, three of the five largest healthcare companies, four MAMAA companies, seven of the top 10 U.S. retailers & e-commerce companies, and many of the Fortune 500. EOE Statement: We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Show more Show less

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive market security. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. Responsibilities Innovation: Stay at the forefront of security technology and trends. Partner with research and engineering teams to define and prototype scalable solutions that identify and mitigate risk to our customers’ environments. Product Design: Collaborate with product managers to identify capability gaps, define new features, and inform and advance differentiation and customer value in our security products. Security Detection Ownership: Author, test, deploy and maintain ASM security detections Drive Unique Insights: Leverage our existing data to identify new patterns, correlate them with existing information, and enrich our security products with these insights Quality Assurance: Conduct thorough testing and validation to ensure the security and reliability of products. Customer Support: Provide technical support and guidance to customers regarding security products and features. Minimum Qualifications A bachelor's degree in computer science or a related field or applicable work experience 2+ years of experience in penetration testing or security engineering Hand-on experience in one of the cloud providers (AWS, Azure or GCP) and able to drive security discussions. Proficiency in programming languages such as Java, Golang, Python, or similar. Experience designing and integrating RESTful APIs Experience with agile development methodologies. Excellent debugging, security communication and interpersonal skills. Preferred Qualifications Cyber asset management product development experience Hand-on experience on AWS, Azure and/or GCP Developed security products/tools that meet customer needs Professional certifications or demonstrable comparable experience Familiarity with DevOps practices and tools We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Show more Show less

NetSPI is a dynamic cyber security company headquartered in Minneapolis. We are a leader in penetration testing and attack surface management. NetSPI is constantly growing and looking for innovative minds to join us in helping some of the largest organizations in the world protect their technology and data from cyber criminals. If you thrive in a collaborative setting and enjoy working with best-in-class technology - We Want To Meet You! The Software Developer (Java) contributes in building high-performing, scalable, product offerings. You must be creative with an eye for quality and detail towards building a modern lending platform that will further streamline client offerings and enhance client experience. Technical Requirements 5 to 8 years of expertise in with backend Java designing and development. Contributing in all phases of the development lifecycle. Writing well designed, testable, efficient code. Strong knowledge of object oriented programming concepts and principles Excellent experience with Web Design Patterns, Spring Framework, Spring Boot, Spring JPA. Excellent knowledge of Relational Databases, SQL and Hibernate ORM. Experience with Microservices. Hands-on experience with unit testing and working with continuous integration environment Experience with the agile development methodology. Product-based experience is required. Highly motivated, self-driven independent performer. Take ownership of your product/features - keep a keen eye out for bugs that might arise, ardently resolve them. Strong communication skills; ability to document and verbally communicate ideas with the team. Preferred Skills Experience with PostgreSQL is highly preferred Experience with Docker/Kubernetes is a plus. Education Qualifications Sc./B. Tech/B.E in Computer Science What We Offer Competitive salary and benefits package. Opportunities for professional growth and development. Flexible work hours A collaborative and inclusive work environment. Access to cutting-edge technologies and resources. We are an equal employment opportunity employer. All qualified applicants willreceive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Show more Show less

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers . Responsibilities: • Understand and analyse user requirements and convert them into a feasible test document (test plans, test suites). • Selenium and Java UI automation-based application testing • Work with geographically distributed team of various experience level Required Technical Skills: • 6-8 years of hands-on testing experience and 3+ years in Automation testing • Knowledge of testing tools, techniques, and methodologies • Strong experience in web application testing • Strong experience with UI Automation testing (desktop) • Good experience in Rest API testing. • Good experience with relational / NoSQL databases • Experience in unit testing, integration testing, performance testing & functional testing Preferred Skills: • Experience working on AI-based products/projects is a big plus. • Open-source contribution • Hands-on experience in Karate Framework • Experience in Web Services, AWS, Azure and Python is a plus • Experience working in Agile team environment • Good communication skills Required Education: • Bachelor’s degree in Computer Science At NetSPI, you will join a team that values innovation and collaboration, where your contributions make a real impact. Apply now to help secure the digital frontier. About the Organization : NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI helps security teams take a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. By continually advancing solutions such as Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS), NetSPI goes beyond the noise to deliver high impact results and recommendations based on business needs, so customers can protect their priorities, perform better, and innovate with confidence. NetSPI secures the most trusted brands on Earth, including nine of the top 10 U.S. banks, four of the top five leading cloud providers, three of the five largest healthcare companies, four MAMAA companies, seven of the top 10 U.S. retailers & e-commerce companies, and many of the Fortune 500. EOE Statement: We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Show more Show less

NetSPI is a dynamic cyber security company headquartered in Minneapolis. We area leader in penetration testing and attack surface management. NetSPI is constantly growing and looking for innovative minds to join us in helping some of the largest organizations in the world protect their technology and data from cyber criminals. If you thrive in a collaborative setting and enjoy working with best-in-class technology - We Want To Meet You! The UI Engineer (React) contributes in building high-performing product offerings. You must be creative with an eye for quality and detail towards building a modernlending platform that will further streamline client offerings and enhance client experience. Responsibilities: • Develop React.js applications using well-designed, efficient code • Work with geographically distributed team of various experience level • Deliver high quality technical solutions to stakeholders in a fast-paced environment • Development in accordance with industry standard and best practices Required Technical Skills: • 3+ years of professional experience in React/Redux/JSS/Jest • 5+ years of hands-on experience using JavaScript, CSS, SASS • 3+ years of experience using 3 rd party UI libraries • 1+ year of experience using Material UI • 1+ years of experience using typescript Required Education: • Bachelor’s degree in computer science Preferred Skills: • Full stack development experience • Open-source contribution • Experience working in Agile team environment • Good communication skills What We Offer: 1. Competitive salary and benefits package. 2. Opportunities for professional growth and development. 3. Flexible work hours 4. A collaborative and inclusive work environment. 5. Access to cutting-edge technologies and resources. We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. NetSPI secures the most trusted brands on Earth through Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS). Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. NetSPI is seeking a Senior Security Consultant who will serve as a resource for delivery of secure code review and web application penetration assessment. This position requires an understanding of various web technologies, enterprise secure development and risk management. In addition, it requires experience with application security assessments/testing, as well as demonstrated competencies in problem solving, client service, written/verbal communication, and project execution. Responsibilities Conduct in-depth penetration testing and secure code review assessments on web applications Dynamically exploit vulnerabilities found in codebase and correlate insecure coding practices into dynamic application vulnerabilities Deliver secure code review assessment on programming languages such as Java, C#, Python, C/C++, Perl, PHP Analyze and identify security vulnerabilities in source code using both automated and manual static analysis tools and techniques Train and assist developers in writing secure software and remediating existing vulnerabilities Provide oversight to peers on service lines through QA process Mentor and assist team members in effectively delivering assessments and enhancing skillsets Present detailed penetration test findings to clients and assist in remediation planning Engage in research to develop new penetration testing methods, tools, and innovative exploit techniques Contribute to the cybersecurity community through tools, presentations, white papers, and blogging Maintain consistency with other internal requirements related to day-to-day administration tasks (time keeping, status updates to clients, etc.) Minimum Qualifications Minimum of 3-5 years of experience in application security including both secure code review and web application penetration testing Exceptional familiarity in all Burp Suite functions. Published Burp extensions and ability to create new Burp Suite extensions preferred Detailed understanding of the OWASP Top 10 and CWE Top 25 issues with focus on ability to identify and remediate vulnerability in source code Ability to explain risk and business impact of security vulnerabilities to variety of audience Bachelor’s degree or higher, preferably in Computer Science, Engineering, Mathematics, IT, or a related field; equivalent experience will also be considered. Preferred Qualifications Experience in detecting, analyzing and providing recommendation guidance on security vulnerabilities using SAST and/or manual secure code review in at least two of the following languages: Java, C#, PHP, Python, C/C++ Experience in software development in at least one server-side programming language We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. Responsibilities Understand and analyse user requirements and convert them into a feasible test document (test plans, test suites). Selenium and Java UI automation-based application testing Work with geographically distributed team of various experience level Required Technical Skills 6-8 years of hands-on testing experience and 3+ years in Automation testing Knowledge of testing tools, techniques, and methodologies Strong experience in web application testing Strong experience with UI Automation testing (desktop) Good experience in Rest API testing. Good experience with relational / NoSQL databases Experience in unit testing, integration testing, performance testing & functional testing Preferred Skills Experience working on AI-based products/projects is a big plus. Open-source contribution Hands-on experience in Karate Framework Experience in Web Services, AWS, Azure and Python is a plus Experience working in Agile team environment Good communication skills Required Education Bachelor’s degree in Computer Science At NetSPI, you will join a team that values innovation and collaboration, where your contributions make a real impact. Apply now to help secure the digital frontier. About the Organization : NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI helps security teams take a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. By continually advancing solutions such as Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS), NetSPI goes beyond the noise to deliver high impact results and recommendations based on business needs, so customers can protect their priorities, perform better, and innovate with confidence. NetSPI secures the most trusted brands on Earth, including nine of the top 10 U.S. banks, four of the top five leading cloud providers, three of the five largest healthcare companies, four MAMAA companies, seven of the top 10 U.S. retailers & e-commerce companies, and many of the Fortune 500. EOE Statement: We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

NetSPI is a dynamic cyber security company headquartered in Minneapolis. We are a leader in penetration testing and attack surface management. NetSPI is constantly growing and looking for innovative minds to join us in helping some of the largest organizations in the world protect their technology and data from cyber criminals. If you thrive in a collaborative setting and enjoy working with best-in-class technology - We Want To Meet You! The Software Developer (Java) contributes in building high-performing, scalable, product offerings. You must be creative with an eye for quality and detail towards building a modern lending platform that will further streamline client offerings and enhance client experience. Technical Requirements 5 to 8 years of expertise in with backend Java designing and development. Contributing in all phases of the development lifecycle. Writing well designed, testable, efficient code. Strong knowledge of object oriented programming concepts and principles Excellent experience with Web Design Patterns, Spring Framework, Spring Boot, Spring JPA. Excellent knowledge of Relational Databases, SQL and Hibernate ORM. Experience with Microservices. Hands-on experience with unit testing and working with continuous integration environment Experience with the agile development methodology. Product-based experience is required. Highly motivated, self-driven independent performer. Take ownership of your product/features - keep a keen eye out for bugs that might arise, ardently resolve them. Strong communication skills; ability to document and verbally communicate ideas with the team. Preferred Skills Experience with PostgreSQL is highly preferred Experience with Docker/Kubernetes is a plus. Education Qualifications Sc./B. Tech/B.E in Computer Science What We Offer Competitive salary and benefits package. Opportunities for professional growth and development. Flexible work hours A collaborative and inclusive work environment. Access to cutting-edge technologies and resources. We are an equal employment opportunity employer. All qualified applicants willreceive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

NetSPI is a dynamic cyber security company headquartered in Minneapolis. We area leader in penetration testing and attack surface management. NetSPI is constantly growing and looking for innovative minds to join us in helping some of the largest organizations in the world protect their technology and data from cyber criminals. If you thrive in a collaborative setting and enjoy working with best-in-class technology - We Want To Meet You! The UI Engineer (React) contributes in building high-performing product offerings. You must be creative with an eye for quality and detail towards building a modernlending platform that will further streamline client offerings and enhance client experience. Responsibilities Develop React.js applications using well-designed, efficient code Work with geographically distributed team of various experience level Deliver high quality technical solutions to stakeholders in a fast-paced environment Development in accordance with industry standard and best practices Required Technical Skills 3+ years of professional experience in React/Redux/JSS/Jest 5+ years of hands-on experience using JavaScript, CSS, SASS 3+ years of experience using 3rd party UI libraries 1+ year of experience using Material UI 1+ years of experience using typescript Required Education Bachelor’s degree in computer science Preferred Skills Full stack development experience Open-source contribution Experience working in Agile team environment Good communication skills What We Offer Competitive salary and benefits package. Opportunities for professional growth and development. Flexible work hours A collaborative and inclusive work environment. Access to cutting-edge technologies and resources. We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Senior Security Consultant (Secure Code Review + Web Application Penetration Testing) NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. NetSPI secures the most trusted brands on Earth through Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS). Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. NetSPI is seeking a Senior Security Consultant who will serve as a resource for delivery of secure code review and web application penetration assessment. This position requires an understanding of various web technologies, enterprise secure development and risk management. In addition, it requires experience with application security assessments/testing, as well as demonstrated competencies in problem solving, client service, written/verbal communication, and project execution. Responsibilities Conduct in-depth penetration testing and secure code review assessments on web applications Dynamically exploit vulnerabilities found in codebase and correlate insecure coding practices into dynamic application vulnerabilities Deliver secure code review assessment on programming languages such as Java, C#, Python, C/C++, Perl, PHP Analyze and identify security vulnerabilities in source code using both automated and manual static analysis tools and techniques Train and assist developers in writing secure software and remediating existing vulnerabilities Provide oversight to peers on service lines through QA process Mentor and assist team members in effectively delivering assessments and enhancing skillsets Present detailed penetration test findings to clients and assist in remediation planning Engage in research to develop new penetration testing methods, tools, and innovative exploit techniques Contribute to the cybersecurity community through tools, presentations, white papers, and blogging Maintain consistency with other internal requirements related to day-to-day administration tasks (time keeping, status updates to clients, etc.) Minimum Qualifications Minimum of 3-5 years of experience in application security including both secure code review and web application penetration testing Exceptional familiarity in all Burp Suite functions. Published Burp extensions and ability to create new Burp Suite extensions preferred Detailed understanding of the OWASP Top 10 and CWE Top 25 issues with focus on ability to identify and remediate vulnerability in source code Ability to explain risk and business impact of security vulnerabilities to variety of audience Bachelor’s degree or higher, preferably in Computer Science, Engineering, Mathematics, IT, or a related field; equivalent experience will also be considered. Preferred Qualifications Experience in detecting, analyzing and providing recommendation guidance on security vulnerabilities using SAST and/or manual secure code review in at least two of the following languages: Java, C#, PHP, Python, C/C++ Experience in software development in at least one server-side programming language We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Pune, MH Initial 3-6 months will be US shift (remote), post that you will be required to work from our Pune office for 3-days per week in a regular IST shift. NetSPI® is an award-winning pioneer of Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed, and scale. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. Join the mission as a Security Consultant II. We are seeking a skilled and detail-oriented Penetration Tester to conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations to strengthen our clients' security posture. As a Penetration Tester supporting Thick client testing, you will be responsible for performing thick client, web and mobile penetration testing. You will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices. Responsibilities Conduct penetration testing engagements on below service line independently: Thick Application Penetration Testing Includes Web Application Penetration (WaPen) testing. Occasionally includes Mobile (MaPen) and IOT/embedded penetration testing. Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture. Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations. Minimum Qualifications Bachelor’s degree or higher required, with a concentration in Computer Science, Engineering, Math, or IT preferred, or equivalent experience Minimum of 3-4 years of work experience in Thick Application Penetration Testing for applications written in Java, C#, C, C++, Swift, Rust, etc. code Includes experience with offensive toolkits used in web application penetration testing. Experience with disassemblers and debuggers like WinDbg, IDA, Ghidra, etc. Experience with dynamic instrumentation toolkits like Frida. Familiarity with offensive tools (e.g., Kali Linux, Burp Suite, Metasploit, Nessus) Familiarity with offensive and defensive IT concepts and protocols Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks. Working knowledge of Windows, Linux and MacOS operating systems internals Ability to work independently and as part of a team Proficient communication skills, both written and verbal This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs Preferred Qualifications Experience performing fuzz testing. Ability to reverse engineer proprietary application layer protocols. Experience with IOT/embedded penetration testing. Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#) Offensive Security Certifications (e.g., GWAPT, GPEN, GXPN, OSWE, OSCP, OSCE) We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Location: Pune, MH Initial 3-6 months will be US shift (remote), post that you will be required to work from our Pune office for 3-days per week in a regular IST shift. NetSPI® is an award-winning pioneer of Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed, and scale. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. Join the mission as a Security Consultant II. We are seeking a skilled and detail-oriented Penetration Tester to conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations to strengthen our clients' security posture. As a Penetration Tester supporting Network testing, you will be responsible for performing Internal Network Pentests. You will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices. Responsibilities Conduct penetration testing engagements on Network (InPen) service line independently Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture. Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations. Minimum Qualifications Bachelor’s degree or higher required, with a concentration in Computer Science, Engineering, Math, or IT preferred, or equivalent experience Minimum of 2-4 years of work experience in Network Penetration Testing with expertise on InPen testing. Familiarity with offensive tools, based on Network and Web or Mobile penetration testing (e.g., Kali Linux, BurpSuite, Metasploit, Nessus) Familiarity with offensive and defensive IT concepts and protocols Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks. Working knowledge of Windows, Linux and MacOS operating systems internals Ability to work independently and as part of a team Proficient communication skills, both written and verbal This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs Preferred Qualifications Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#) Offensive Security Certifications (e.g., GXPN, GPEN, OSCP, CISSP, GWAPT) We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.